$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: dYTRFtAVKvwcLaoY6MdOULUolN+6APlWluwLmTNHyY4= Subject key identifier: 2B:EE:D2:C0:01:CC:3D:77:64:F4:1F:69:E7:99:F1:F3:2A:97:B1:6F Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 04E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 04D4 Signing time: Sun 19 May 2024 01:29:07 +0000 Manifest this update: Sun 19 May 2024 01:29:06 +0000 Manifest next update: Sun 26 May 2024 01:29:06 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: yCaJOpUU1+hfGHA6WS3FAz/7TM1f+H+KzhExOLkC65s=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: uD0SlFN84GC2MoE4vVvfp4yng005Xq5iK1CMSLwmVKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1254 (0x4e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: May 19 01:29:06 2024 GMT Not After : May 26 01:29:06 2024 GMT Subject: CN=664955e3-7543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7b:5c:18:a3:da:ac:ac:b6:8d:c3:f5:b0:e4: af:10:54:f7:93:e7:09:68:17:55:28:cd:23:14:3c: 05:69:15:c8:4a:44:53:3d:4f:2b:36:6b:de:9d:91: aa:24:d9:c6:d8:a8:b0:b6:92:fa:af:6f:c6:27:20: e0:62:5e:c8:79:42:82:a7:e2:69:6c:ce:2a:7d:cc: 41:9a:3a:a2:49:b7:5c:91:48:24:30:14:a6:a8:71: 52:62:ea:e2:b5:69:a6:a1:bd:bf:38:3c:14:6c:be: 9b:cc:87:c5:54:72:38:4b:30:e6:ef:0f:ec:1b:cb: a0:c0:f8:81:75:36:03:df:c2:4d:12:0f:f0:86:91: 90:a1:7a:a3:91:8f:21:bb:d4:62:c5:42:96:4a:10: 4e:45:f7:cd:3d:64:6e:88:06:89:bd:46:ae:e5:ee: 99:85:b2:21:31:5c:03:f0:ed:38:3b:ef:ce:7e:15: e0:2a:99:1e:eb:a9:61:bc:4b:57:e1:8c:69:07:eb: ee:47:27:5f:34:6b:16:a0:ed:29:37:73:3f:54:90: 5b:74:22:9d:88:4d:c6:88:f0:20:16:d1:3f:56:6f: 35:c5:93:9e:c4:0f:6a:8b:f7:5e:18:12:d8:d4:ee: 51:f5:46:f7:ad:29:40:01:bc:2f:2b:10:6d:98:6b: 8f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EE:D2:C0:01:CC:3D:77:64:F4:1F:69:E7:99:F1:F3:2A:97:B1:6F X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b9:ef:94:1a:06:3a:d0:25:c1:03:cf:42:b2:db:5c:8c:99: 00:7b:d3:75:e8:11:4f:2e:8a:14:fa:55:de:35:24:df:f5:ca: b3:29:da:38:ae:fb:c7:db:96:7b:29:c2:e3:47:2e:5e:fe:9e: 34:c1:3d:a4:63:a1:54:0f:07:dc:1e:2d:2f:69:1a:1c:f2:72: 1a:52:1d:81:84:04:73:f9:46:90:42:d7:32:d7:87:18:c9:df: a4:32:89:38:c6:f5:46:93:b0:e5:b4:b5:6c:ab:bf:35:87:92: 13:8e:92:e7:1f:2d:28:7f:0b:e7:13:f9:7c:21:97:6e:31:00: 28:90:2d:45:89:5f:12:b9:80:13:f8:24:f9:1a:5e:46:24:58: 54:a1:d7:37:05:11:76:37:91:d4:63:a7:2b:ae:2b:72:3e:3b: d6:b5:1e:bb:90:47:1d:4d:b7:96:a8:ba:c6:ef:0a:b0:27:b8: 1a:ae:e4:92:fd:67:4c:02:69:f1:61:34:2d:6f:39:b2:b0:1e: 6f:2c:22:52:1e:80:3d:11:67:c6:09:19:9c:51:36:67:54:d6: a8:b0:a3:44:bb:89:ce:7d:bd:15:a0:27:26:16:60:0a:bf:3b: d9:a0:07:1d:6d:9e:f3:c3:3c:a7:ea:77:82:99:24:7e:06:b6: f2:36:4f:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjQwNTE5MDEyOTA2WhcNMjQwNTI2MDEyOTA2WjAYMRYwFAYD VQQDEw02NjQ5NTVlMy03NTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5XtcGKParKy2jcP1sOSvEFT3k+cJaBdVKM0jFDwFaRXISkRTPU8rNmvenZGq JNnG2KiwtpL6r2/GJyDgYl7IeUKCp+JpbM4qfcxBmjqiSbdckUgkMBSmqHFSYuri tWmmob2/ODwUbL6bzIfFVHI4SzDm7w/sG8ugwPiBdTYD38JNEg/whpGQoXqjkY8h u9RixUKWShBORffNPWRuiAaJvUau5e6ZhbIhMVwD8O04O+/OfhXgKpke66lhvEtX 4YxpB+vuRydfNGsWoO0pN3M/VJBbdCKdiE3GiPAgFtE/Vm81xZOexA9qi/deGBLY 1O5R9Ub3rSlAAbwvKxBtmGuPawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvu0sAB zD13ZPQfaeeZ8fMql7FvMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPue+UGgY60CXBA89CsttcjJkAe9N16BFPLooU+lXeNSTf9cqzKdo4 rvvH25Z7KcLjRy5e/p40wT2kY6FUDwfcHi0vaRoc8nIaUh2BhARz+UaQQtcy14cY yd+kMok4xvVGk7DltLVsq781h5ITjpLnHy0ofwvnE/l8IZduMQAokC1FiV8SuYAT +CT5Gl5GJFhUodc3BRF2N5HUY6crrityPjvWtR67kEcdTbeWqLrG7wqwJ7garuSS /WdMAmnxYTQtbzmysB5vLCJSHoA9EWfGCRmcUTZnVNaosKNEu4nOfb0VoCcmFmAK vzvZoAcdbZ7zwzyn6neCmSR+BrbyNk/4 -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org